-
1. Re: Roles and Permissions
yuriy_zubarev Mar 18, 2008 10:17 PM (in response to dro_k)If you look at Identity source you would see it has a very rudimentary implementation for roles and permissions. For example:
public boolean hasPermission(String name, String action, Object...arg) { return !securityEnabled; }
You are supposed to extend this class with your own implementation if you need more sophisticated handling of roles and permissions.
Regards,
Yuriy -
2. Re: Roles and Permissions
dro_k Mar 18, 2008 10:44 PM (in response to dro_k)Thanks for your reply Yuriy.
Yea, I looked at the code and kind of thought that I need to implement my own, anyhow, do you know how I should extend the Identity and have Seam recognize the new Identity implementation?
Thanks
-
3. Re: Roles and Permissions
yuriy_zubarev Mar 18, 2008 11:31 PM (in response to dro_k)Sure, it's :
@Name("org.jboss.seam.security.identity") @Scope(SESSION) @Install(precedence = APPLICATION) @BypassInterceptors @Startup public class MyIdentity extends Identity { ... }
Regards,
Yuriy -
4. Re: Roles and Permissions
shane.bryzak Mar 19, 2008 4:21 PM (in response to dro_k)I'm currently working on a major restructuring of Seam's security API, including a number of new ways of resolving permission checks. These include ACL (instance-based) security, dynamic role->permission mappings and of course we still support rule-based permissions. Unless you're in a hurry you may like to wait and see if these new features will solve your security requirements.
-
5. Re: Roles and Permissions
dro_k Mar 19, 2008 5:58 PM (in response to dro_k)Thanks! It's not urgent. My time frame is a month. Do you have a JIRA for this activity so I can follow-up on it?
-
6. Re: Roles and Permissions
dro_k Mar 19, 2008 6:01 PM (in response to dro_k)Thanks Yuiry. I was also able to find this page, which is extending Identity to support NTLM authentication. Pretty cool.
-